Fixed Bugs

Added access checks for DDL commands to make sure they do not get replicated if they failed without proper permissions. Previously, when a user tried to perform certain DDL actions that failed locally due to lack of privileges, the command could still be replicated to other nodes, because access checks were performed after replication.This vulnerability is identified as CVE-2017-15365.

Help us improve our software quality by reporting any bugs you encounter using our bug tracking system. As always, thanks for your continued support of Percona!

Related

Alexey works for Percona as a Technical Writer responsible for open source software documentation. He joined the company in March 2015 with almost 8 years of prior experience in writing and managing technical documentation. Before joining Percona, Alexey worked for Oracle on Java SE and Java ME documentation. And before that his writing experience revolved around virtualization and information security software. Alexey has a degree in Electrical Engineering and a supplementary qualification in translation theory (Russian-English). He lives in Saint Petersburg, Russia with his wife and son. He spends his free time practicing and playing ultimate frisbee in a local team.